cbcvebase.
CVE-2001-0821
published 2001-12-06

CVE-2001-0821: The default configuration of DCShop 1.002 beta places sensitive files in the cgi-bin directory, which could allow remote attackers to read sensitive data via…

PriorityP419medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
3.87%
88.9th percentile
The default configuration of DCShop 1.002 beta places sensitive files in the cgi-bin directory, which could allow remote attackers to read sensitive data via an HTTP GET request for (1) orders.txt or (2) auth_user_file.txt.

Affected

1 ranges
VendorProductVersion rangeFixed in
dcscriptsdcshop
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.